Inicio Explorar Ayuda
Iniciar sesión
RT-Thread-packages
/
esp-idf
espejo de https://github-proxy.rt-thread.io/RT-Thread-packages/esp-idf.git
2
0
Fork 0
Archivos Incidencias 0 Wiki
Rama: master
Ramas Etiquetas
esp-idf
/
tools
/
test_apps
/
security
/
secure_boot
/
main
/
secure_boot_main.c

secure_boot_main.c 2.4 KB
Permalink Histórico Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879 
  1. /* Flash encryption Example
    2. 

  2. 

  3.    This example code is in the Public Domain (or CC0 licensed, at your option.)
    4. 

  4. 

  5.    Unless required by applicable law or agreed to in writing, this
    6. 

  6.    software is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR
    7. 

  7.    CONDITIONS OF ANY KIND, either express or implied.
    8. 

  8. */
    9. 

  9. #include <stdio.h>
    10. 

  10. #include "sdkconfig.h"
    11. 

  11. #include "freertos/FreeRTOS.h"
    12. 

  12. #include "freertos/task.h"
    13. 

  13. #include "soc/efuse_reg.h"
    14. 

  14. #include "esp_efuse.h"
    15. 

  15. #include "esp_secure_boot.h"
    16. 

  16. #include "esp_chip_info.h"
    17. 

  17. #include "esp_flash.h"
    18. 

  18. #include "esp_log.h"
    19. 

  19. #include "esp_efuse_table.h"
    20. 

  20. #include <string.h>
    21. 

  21. 

  22. static void example_print_chip_info(void);
    23. 

  23. static void example_secure_boot_status(void);
    24. 

  24. 

  25. #define TAG "example_secure_boot"
    26. 

  26. 

  27. void app_main(void)
    28. 

  28. {
    29. 

  29.     printf("\nExample to check Secure Boot status\n");
    30. 

  30. 

  31.     example_print_chip_info();
    32. 

  32.     example_secure_boot_status();
    33. 

  33. }
    34. 

  34. 

  35. 

  36. static void example_print_chip_info(void)
    37. 

  37. {
    38. 

  38.     /* Print chip information */
    39. 

  39.     esp_chip_info_t chip_info;
    40. 

  40.     uint32_t flash_size;
    41. 

  41.     esp_chip_info(&chip_info);
    42. 

  42.     printf("This is %s chip with %d CPU cores\n", CONFIG_IDF_TARGET, chip_info.cores);
    43. 

  43. 

  44.     unsigned major_rev = chip_info.revision / 100;
    45. 

  45.     unsigned minor_rev = chip_info.revision % 100;
    46. 

  46.     printf("silicon revision v%d.%d, ", major_rev, minor_rev);
    47. 

  47.     if(esp_flash_get_size(NULL, &flash_size) != ESP_OK) {
    48. 

  48.         printf("Get flash size failed");
    49. 

  49.         return;
    50. 

  50.     }
    51. 

  51. 

  52.     printf("%dMB %s flash\n", flash_size / (1024 * 1024),
    53. 

  53.             (chip_info.features & CHIP_FEATURE_EMB_FLASH) ? "embedded" : "external");
    54. 

  54. }
    55. 

  55. 

  56. #define DIGEST_LEN 32
    57. 

  57. 

  58. static void example_secure_boot_status(void)
    59. 

  59. {
    60. 

  60.     esp_secure_boot_key_digests_t trusted_keys = { 0};
    61. 

  61. 

  62.     ESP_LOGI(TAG, "Checking for Secure Boot..");
    63. 

  63.     if(esp_secure_boot_enabled()) {
    64. 

  64.         ESP_LOGI(TAG, "Secure Boot is enabled");
    65. 

  65.         ESP_ERROR_CHECK( esp_secure_boot_read_key_digests(&trusted_keys) );
    66. 

  66. 

  67.         unsigned total = 0;
    68. 

  68.         for (int i = 0; i < SOC_EFUSE_SECURE_BOOT_KEY_DIGESTS; i++) {
    69. 

  69.             ESP_LOGI(TAG, "Key slot %d:", i);
    70. 

  70.             if (trusted_keys.key_digests[i]) {
    71. 

  71.                 ESP_LOG_BUFFER_HEXDUMP("trusted key", trusted_keys.key_digests[i], DIGEST_LEN, ESP_LOG_INFO);
    72. 

  72.                 total++;
    73. 

  73.             }
    74. 

  74.         }
    75. 

  75.         ESP_LOGI(TAG, "Total %d trusted public keys", total);
    76. 

  76.     } else {
    77. 

  77.         ESP_LOGI(TAG, "Secure Boot not enabled. Enable Secure Boot in menuconfig, build & flash again.");
    78. 

  78.     }
    79. 

  79. }
    80.